chore(deps): bump anchore/sbom-action from 0.22.1 to 0.23.0

[dependabot]

Bumps anchore/sbom-action from 0.22.1 to 0.23.0.

Release notes

Sourced from anchore/sbom-action's releases.

v0.23.0

• switch to single-file dist build with sub-action flags and update dependencies (#595) [@​kzantow]
• switch to esbuild (#590) [@​willmurphyscode]
• update Syft to v1.42.1 (#599) [@anchore-actions-token-generator[bot]]

v0.22.2

⬆️ Dependencies

• chore(deps): bump fast-xml-parser from 5.3.3 to 5.3.4 (#581) [@dependabot[bot]]
• chore(deps): update Syft to v1.41.2 (#582) [@anchore-actions-token-generator[bot]]
• chore(deps-dev): bump the dev-dependencies group with 2 updates (#580) [@dependabot[bot]]
• chore(deps): update Syft to v1.41.1 (#579) [@anchore-actions-token-generator[bot]]

Commits

• 17ae174 chore(deps/test): move to es modules, node:test, single dist file (#595)
• 6d473d3 chore(deps): update Syft to v1.42.1 (#599)
• 60619e7 fix tests and bump fast-xml-parser (#598)
• e2bd58a chore(deps-dev): bump the dev-dependencies group with 3 updates (#592)
• d032d7d ci(syft auto update): npm ci, not npm install (#597)
• 2d09430 fix(dev): switch to esbuild (#590)
• 74c5ce9 chore(deps): update Syft to v1.42.0 (#589)
• 77fae5a chore(deps-dev): bump the dev-dependencies group with 4 updates (#583)
• debc3ee chore(deps): bump npm-check-updates in the non-major group (#584)
• fff8762 chore(deps): bump zizmorcore/zizmor-action from 0.4.1 to 0.5.0 (#588)
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
anchore/sbom-action	[>= 0.20.a, < 0.21]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 23.39%. Comparing base (73214db) to head (93bab66).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #634   +/-   ##
=======================================
  Coverage   23.39%   23.39%           
=======================================
  Files          82       82           
  Lines        5522     5522           
=======================================
  Hits         1292     1292           
  Misses       4083     4083           
  Partials      147      147           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.